Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2025-11230

🗓️ 19 Nov 2025 09:28:39Reported by canonicalType 
cve
 cve🔗 web.nvd.nist.gov👁 36 Views

DoS in HAProxy mjson library due to an inefficient algorithm; attackers trigger with crafted JSON.

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
Tenable Nessus		Alibaba Cloud Linux 3 : 0186: haproxy (ALINUX3-SA-2025:0186)
22 Nov 202500:00
nessus
Tenable Nessus		AlmaLinux 10 : haproxy (ALSA-2025:21691)
25 Nov 202500:00
nessus
Tenable Nessus		AlmaLinux 9 : haproxy (ALSA-2025:21693)
19 Nov 202500:00
nessus
Tenable Nessus		Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2025-11230)
22 Jan 202600:00
nessus
Tenable Nessus		Debian dsa-6017 : haproxy - security update
3 Oct 202500:00
nessus
Tenable Nessus		EulerOS 2.0 SP12 : haproxy (EulerOS-SA-2026-1069)
15 Jan 202600:00
nessus
Tenable Nessus		EulerOS 2.0 SP12 : haproxy (EulerOS-SA-2026-1089)
15 Jan 202600:00
nessus
Tenable Nessus		EulerOS 2.0 SP13 : haproxy (EulerOS-SA-2026-1211)
2 Feb 202600:00
nessus
Tenable Nessus		EulerOS 2.0 SP13 : haproxy (EulerOS-SA-2026-1223)
2 Feb 202600:00
nessus
Tenable Nessus		EulerOS 2.0 SP11 : haproxy (EulerOS-SA-2026-1580)
17 Mar 202600:00
nessus
Rows per page
NVD
Node
haproxyaloha_applianceRange14.5.014.5.33
OR
haproxyaloha_applianceRange15.5.015.5.28
OR
haproxyaloha_applianceRange16.5.016.5.19
OR
haproxyaloha_applianceRange17.0.017.0.7
OR
haproxyhaproxyRange2.4.02.4.30
OR
haproxyhaproxyRange2.6.02.6.23
OR
haproxyhaproxyRange2.8.02.8.16
OR
haproxyhaproxyRange3.0.03.0.12
OR
haproxyhaproxyRange3.1.03.1.9
OR
haproxyhaproxyRange3.2.03.2.6
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-253.271
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-254.271
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-259.342
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-263.343
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-264.356
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-268.356
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-268.373
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-268.459
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-268.464
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-268.477
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-268.499
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-268.553
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-268.560
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-268.564
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-268.596
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-269.596
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-269.599
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-270.616
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-271.673
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-271.677
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-272.683
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-272.686
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-272.728
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-274.752
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-276.752
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-277.814
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-277.831
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-278.838
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-279.852
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-279.859
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-279.877
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-279.911
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-279.940
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-279.952
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-279.953
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-279.956
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-280.956
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-282.998
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-282.999
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-284.999
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-285.1010
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-286.1064
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-286.1068
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-286.1089
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-286.1094
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-288.1094
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-288.1158
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-288.1167
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-288.1189
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-289.1189
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-290.1239
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-291.1246
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-292.1293
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-294.1346
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-294.1364
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-294.1376
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-294.1377
OR
haproxyhaproxy_enterpriseMatch2.4r11.0.0-294.1442
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-281.466
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-282.561
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-283.562
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-283.565
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-283.616
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-283.632
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-283.633
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-283.636
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-284.636
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-285.726
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-285.727
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-287.727
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-288.770
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-288.773
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-288.848
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-288.849
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-289.1020
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-289.1028
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-289.1041
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-289.873
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-289.975
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-289.976
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-291.1046
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-292.1046
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-292.1055
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-292.1120
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-292.1147
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-292.1148
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-292.1156
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-292.1181
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-292.1187
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-293.1189
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-293.1190
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-294.1212
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-294.1285
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-295.1303
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-296.1392
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-296.1416
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-299.1416
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-299.1474
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-299.1487
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-299.1511
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-299.1542
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-299.1557
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-299.1596
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-299.1603
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-299.1606
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-299.1618
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-300.1666
OR
haproxyhaproxy_enterpriseMatch2.6r11.0.0-301.1666
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-302.234
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-304.266
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-305.279
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-305.285
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-306.288
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-306.289
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-307.317
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-310.350
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-310.364
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-310.373
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-310.374
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-310.418
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-310.422
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-310.424
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-311.449
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-311.452
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-311.453
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-312.592
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-312.613
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-317.613
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-318.674
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-319.699
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-319.723
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-320.750
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-320.761
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-320.770
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-320.780
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-320.781
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-320.783
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-320.831
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-320.851
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-320.853
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-320.895
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-321.895
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-321.901
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-321.919
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-321.931
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-321.934
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-321.937
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-322.942
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-324.1030
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-324.1071
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-324.1072
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-324.947
OR
haproxyhaproxy_enterpriseMatch2.8r11.0.0-326.1073
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-337.363
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-337.390
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-337.394
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-339.395
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-339.405
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-339.415
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-339.455
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-339.466
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-339.471
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-341.475
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-342.482
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-344.495
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-344.503
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-344.561
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-344.564
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-344.591
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-344.608
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-344.641
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-344.655
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-344.672
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-345.673
OR
haproxyhaproxy_enterpriseMatch3.0r11.0.0-346.792
OR
haproxyhaproxy_enterpriseMatch3.1r11.0.0-345.233
OR
haproxyhaproxy_enterpriseMatch3.1r11.0.0-346.274
OR
haproxyhaproxy_enterpriseMatch3.1r11.0.0-346.287
OR
haproxyhaproxy_enterpriseMatch3.1r11.0.0-347.299
OR
haproxyhaproxy_enterpriseMatch3.1r11.0.0-347.338
OR
haproxyhaproxy_enterpriseMatch3.1r11.0.0-347.362
OR
haproxyhaproxy_enterpriseMatch3.1r11.0.0-347.405
OR
haproxyhaproxy_enterpriseMatch3.1r11.0.0-347.419
OR
haproxyhaproxy_enterpriseMatch3.1r11.0.0-347.431
OR
haproxyhaproxy_enterpriseMatch3.1r11.0.0-347.449
OR
haproxyhaproxy_enterpriseMatch3.1r11.0.0-348.519
OR
haproxykubernetes_ingress_controllerRange<1.9.14-ee7enterprise
OR
haproxykubernetes_ingress_controllerRange<3.1.12community
OR
haproxykubernetes_ingress_controllerRange1.10.10-ee11.11.12-ee10enterprise
OR
haproxykubernetes_ingress_controllerRange3.0.0-ee13.0.15-ee4enterprise
[
  {
    "defaultStatus": "unaffected",
    "product": "HAProxy Community Edition",
    "programFiles": [
      "src/mjson.c"
    ],
    "repo": "https://git.haproxy.org/",
    "vendor": "HAProxy Technologies",
    "versions": [
      {
        "lessThan": "2.4.30",
        "status": "affected",
        "version": "2.4.0",
        "versionType": "semver"
      },
      {
        "lessThan": "2.6.23",
        "status": "affected",
        "version": "2.6.0",
        "versionType": "semver"
      },
      {
        "lessThan": "2.8.16",
        "status": "affected",
        "version": "2.8.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.0.12",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.1.9",
        "status": "affected",
        "version": "3.1.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.2.6",
        "status": "affected",
        "version": "3.2.0",
        "versionType": "semver"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
19 Dec 2025 16:44Current
5.8Medium risk
Vulners AI Score5.8
CVSS 3.17.5
EPSS0.00468
SSVC
CWE-407
denial of servicehaproxy mjsoninefficient algorithmcrafted json
36